This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: LpW0EIbrHDCxug5e+MQwHwtlNQWTCMchfG8khRKZaNM= Subject key identifier: 88:76:2C:41:E0:32:99:CB:3F:A6:8E:88:AB:FA:66:0B:43:92:F4:85 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 04A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 0494 Signing time: Thu 04 Dec 2025 22:36:03 +0000 Manifest this update: Thu 04 Dec 2025 22:36:02 +0000 Manifest next update: Thu 11 Dec 2025 22:36:02 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: PuQFAg60akWAVGmKlL7oY9s4BJp0IZtcoJgfFwm1WAs=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Dec 4 22:36:02 2025 GMT Not After : Dec 11 22:36:02 2025 GMT Subject: CN=69320cd3-830a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:14:f6:0d:62:40:98:58:a3:69:3c:3d:22: bd:f0:39:15:7b:1b:36:55:3c:c3:df:05:f3:d9:3f: 59:78:43:a4:e9:56:ee:5e:4f:6d:fa:29:0a:89:2d: 7e:c7:66:a5:6f:c0:60:a8:bc:cf:21:29:ef:a7:4b: bb:e7:57:31:71:33:3d:d5:50:2a:b0:a2:14:9b:5f: b0:7a:31:5b:fa:fd:18:62:4c:3b:f7:58:69:d5:94: 7c:fe:0e:6a:90:68:81:3f:5a:12:72:cc:45:42:de: ef:37:11:51:9f:20:7e:8d:3e:ac:18:32:30:1e:b4: 8c:77:18:a5:da:44:de:73:ae:12:4a:1b:59:b0:0b: a1:3c:59:36:91:ce:0c:da:e6:b6:59:ee:f5:90:51: 3f:4f:9d:82:a7:55:13:3b:0e:ff:75:94:27:08:78: f3:4d:9d:d3:e5:b5:a1:56:d0:b9:03:7a:31:74:3f: 3d:f4:7d:0c:eb:79:61:4a:9a:45:48:47:be:a2:f2: f1:9d:51:d0:5e:d9:9a:c7:78:4c:49:5b:ee:e1:fc: 40:ab:d1:66:01:a0:e9:c6:23:62:cb:6e:63:05:3e: 71:16:62:05:15:ed:76:8c:f9:74:2f:94:bf:27:aa: 5a:66:08:03:88:a0:6d:6c:c5:54:86:0f:93:9e:b0: e6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:76:2C:41:E0:32:99:CB:3F:A6:8E:88:AB:FA:66:0B:43:92:F4:85 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1d:6e:92:4c:db:f9:5d:99:8c:d6:43:1e:d3:53:bc:c7:85: 1a:c5:4a:df:b3:9f:38:20:24:ed:f7:20:58:b5:35:95:c6:c1: e3:30:ce:95:38:17:50:ff:a2:d1:73:8c:68:16:1b:b8:85:ea: e2:3b:d4:56:49:5c:af:e1:a0:d2:2f:92:60:14:cf:6d:8b:1d: 2e:0b:aa:f4:1c:ed:fe:6c:39:0b:82:8f:52:db:1c:83:82:1e: d7:45:8b:18:4c:ae:1c:e2:a6:f5:0c:0a:a9:f4:50:04:1c:ef: 26:79:6f:4a:8c:45:a2:39:58:7c:fa:ef:c0:10:dc:fc:2a:96: 8a:a1:6e:21:de:14:38:04:4d:18:e0:b7:71:9b:79:c6:20:0d: c6:ca:f8:60:92:a8:3e:c2:31:07:86:c8:3d:3b:bb:51:95:d5: 11:d0:f3:a0:a4:f4:bd:61:ef:83:91:b9:cc:06:80:b1:d6:ec: 59:83:8e:30:7b:2f:62:44:64:df:70:ba:1d:6d:55:b5:fb:98: c5:c6:fe:d2:7d:2a:9b:3a:9e:b3:16:c9:18:a6:35:6b:28:6e: 0e:1c:a2:a8:d1:2f:24:6f:c6:35:70:ce:4e:95:b1:12:1a:98: 11:0b:54:b9:08:16:50:ee:79:bd:46:a2:03:08:6a:e9:95:be: 70:ef:9d:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUxMjA0MjIzNjAyWhcNMjUxMjExMjIzNjAyWjAYMRYwFAYD VQQDEw02OTMyMGNkMy04MzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9cU9g1iQJhYo2k8PSK98DkVexs2VTzD3wXz2T9ZeEOk6VbuXk9t+ikKiS1+ x2alb8BgqLzPISnvp0u751cxcTM91VAqsKIUm1+wejFb+v0YYkw791hp1ZR8/g5q kGiBP1oScsxFQt7vNxFRnyB+jT6sGDIwHrSMdxil2kTec64SShtZsAuhPFk2kc4M 2ua2We71kFE/T52Cp1UTOw7/dZQnCHjzTZ3T5bWhVtC5A3oxdD899H0M63lhSppF SEe+ovLxnVHQXtmax3hMSVvu4fxAq9FmAaDpxiNiy25jBT5xFmIFFe12jPl0L5S/ J6paZggDiKBtbMVUhg+TnrDmrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIh2LEHg MpnLP6aOiKv6ZgtDkvSFMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9HW6STNv5XZmM1kMe01O8x4UaxUrfs584ICTt9yBYtTWVxsHjMM6V OBdQ/6LRc4xoFhu4heriO9RWSVyv4aDSL5JgFM9tix0uC6r0HO3+bDkLgo9S2xyD gh7XRYsYTK4c4qb1DAqp9FAEHO8meW9KjEWiOVh8+u/AENz8KpaKoW4h3hQ4BE0Y 4Ldxm3nGIA3Gyvhgkqg+wjEHhsg9O7tRldUR0POgpPS9Ye+DkbnMBoCx1uxZg44w ey9iRGTfcLodbVW1+5jFxv7SfSqbOp6zFskYpjVrKG4OHKKo0S8kb8Y1cM5OlbES GpgRC1S5CBZQ7nm9RqIDCGrplb5w751Q -----END CERTIFICATE-----Generated at Sat Dec 6 23:42:56 2025 by rpki-client